Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
teddyko_FTNT
Staff
Staff

Created on ‎12-05-2018 03:42 PM

Article Id 191450

Technical Note: FortiManager - Firewall Remote Authentication for System Administrators

Description
This article explains how to configure FortiGate remote system administrators from the FortiManager.

Solution

Generally, FortiGate settings are configured exclusively at one database (Device Database, or Policy Package ADOM DB). One exception is system admins configured with remote authentication.

Remote authentication server should always be configured under Policy & Objects -> Object Configuration. The admin settings are configured under Device Manager.

1)      Policy & Objects -> Object Configurations -> User & Devices

a)       Select Remote Server type (LDAP, RADIUS, TACACS+)

b)      Configure server IP/secret and save

2)      Policy & Objects -> Object Configurations -> User & Devices -> User Groups

a)       Create New Remote Authentication Server

FMGRemoteAuth1.png

3)      Device Manager -> Edit Device -> System -> Administrator

a)       Configure Remote User Group with group created from step 2

b)      User Group list is pulled from ADOM Database, instead of Device DB

FMGRemoteAuth1.png
1366
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.